$ rpki-client -vvf repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138352e302f32342d3234203d3e203436303330.roa File: 3138322e34382e3138352e302f32342d3234203d3e203436303330.roa (raw, json) Hash identifier: If36ui5ISEg5WOxMXpH75GpsG72nyYEsakjMPL+WNvw= Subject key identifier: 3D:05:1D:51:55:89:BF:1A:5D:C8:C3:C5:F3:DE:AA:4D:8D:AE:3A:A8 Certificate issuer: /CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Certificate serial: 5D63CD6E2935C0281FA1BCD7ECEB7DE4D144F5DF Authority key identifier: 56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138352e302f32342d3234203d3e203436303330.roa Signing time: Fri 18 Oct 2024 12:00:02 +0000 ROA not before: Fri 18 Oct 2024 11:55:02 +0000 ROA not after: Fri 17 Oct 2025 12:00:02 +0000 asID: 46030 IP address blocks: 182.48.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:63:cd:6e:29:35:c0:28:1f:a1:bc:d7:ec:eb:7d:e4:d1:44:f5:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5660DB3811C1646AC1F8BBA996A9757B40FB0556 Validity Not Before: Oct 18 11:55:02 2024 GMT Not After : Oct 17 12:00:02 2025 GMT Subject: CN=3D051D515589BF1A5DC8C3C5F3DEAA4D8DAE3AA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c1:3a:4e:a5:7f:96:86:af:90:dc:53:38:e7: 46:16:13:c0:82:23:f5:db:96:8d:3e:86:4e:5e:92: 5e:0e:48:7d:f3:e0:86:34:69:bd:d6:9d:c9:53:43: 5d:91:c4:57:a3:17:14:35:fc:94:a8:db:ac:38:b7: b7:c0:17:fb:61:5a:c2:76:dc:1d:79:68:c2:2d:ad: 59:31:bc:b3:2d:a5:e8:c5:e2:c4:46:42:d8:f3:83: fa:4a:01:16:c8:b2:f0:05:85:ba:cf:8b:a7:62:61: 68:4c:45:41:5f:43:ec:39:d3:32:62:8b:a6:d9:50: 41:8b:3c:6a:9b:d3:a2:19:44:d7:68:57:a8:f1:28: 96:62:ac:69:16:5d:fd:16:f9:d8:39:ea:79:61:a5: 16:78:49:99:2c:6f:41:f9:4b:62:60:d4:7b:15:4c: 75:ab:3b:45:25:03:49:9c:47:80:69:49:a5:27:6a: bc:d6:8f:3e:4e:29:9d:bc:e2:35:ca:0f:e3:4b:c4: 76:77:7d:c1:22:17:0e:97:ed:d0:97:5c:20:dc:3f: fd:c8:2f:16:7b:fa:e5:6c:30:c0:16:cf:72:54:14: b5:33:ec:e4:b2:f7:7d:fd:06:5d:71:c8:4b:bc:30: ea:ef:f6:ee:e2:64:5b:18:1c:a4:25:22:cd:47:d1: fc:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:05:1D:51:55:89:BF:1A:5D:C8:C3:C5:F3:DE:AA:4D:8D:AE:3A:A8 X509v3 Authority Key Identifier: keyid:56:60:DB:38:11:C1:64:6A:C1:F8:BB:A9:96:A9:75:7B:40:FB:05:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/5660DB3811C1646AC1F8BBA996A9757B40FB0556.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5660DB3811C1646AC1F8BBA996A9757B40FB0556.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d1d596c-09e3-4621-a63b-20a513cd48b9/0/3138322e34382e3138352e302f32342d3234203d3e203436303330.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.48.185.0/24 Signature Algorithm: sha256WithRSAEncryption 97:1a:b2:c3:b1:ed:00:97:e7:f7:09:b9:5b:4b:3d:a8:f4:18: aa:a4:b5:df:87:0a:af:2e:9d:70:ff:f6:32:2d:5b:63:c4:30: 52:78:23:af:2d:60:e1:dc:1f:ad:ad:db:b5:00:f8:59:25:5b: a7:61:97:30:20:1c:fd:19:89:cb:ae:a8:3f:ba:b8:af:f9:f0: 3a:89:61:01:64:cd:d1:61:03:75:dd:d8:d6:72:fc:d2:0a:e1: c9:b3:d8:73:94:ae:ed:09:ff:65:ba:9a:5a:6f:4e:b3:11:39: 39:8f:8f:51:36:74:10:bb:ab:a9:19:16:fa:7b:21:99:51:fb: de:a6:99:2f:e0:3e:3f:77:1c:81:32:63:11:2a:dc:08:91:7d: 60:ea:4d:a4:99:49:a4:43:dc:3b:4c:30:a3:df:87:fe:1a:61: 23:26:d3:95:90:b6:06:0e:c9:36:ab:f3:3e:72:26:87:91:0c: fb:67:db:cc:e7:7b:d9:54:d6:2b:40:7f:05:22:5f:0f:12:89: 44:9b:c3:41:77:60:2f:11:1e:66:fc:65:b3:3d:21:cd:05:4d: f1:32:37:f2:7d:48:ef:5b:14:d4:44:21:25:06:2e:b1:42:e8: d9:79:eb:b8:50:4e:6b:af:4e:67:9f:d1:f0:b1:73:cc:c6:fe: bd:8e:72:46 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUXWPNbik1wCgfobzX7Ot95NFE9d8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0 MEZCMDU1NjAeFw0yNDEwMTgxMTU1MDJaFw0yNTEwMTcxMjAwMDJaMDMxMTAvBgNV BAMTKDNEMDUxRDUxNTU4OUJGMUE1REM4QzNDNUYzREVBQTREOERBRTNBQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHwTpOpX+Whq+Q3FM450YWE8CC I/Xblo0+hk5ekl4OSH3z4IY0ab3WnclTQ12RxFejFxQ1/JSo26w4t7fAF/thWsJ2 3B15aMItrVkxvLMtpejF4sRGQtjzg/pKARbIsvAFhbrPi6diYWhMRUFfQ+w50zJi i6bZUEGLPGqb06IZRNdoV6jxKJZirGkWXf0W+dg56nlhpRZ4SZksb0H5S2Jg1HsV THWrO0UlA0mcR4BpSaUnarzWjz5OKZ284jXKD+NLxHZ3fcEiFw6X7dCXXCDcP/3I LxZ7+uVsMMAWz3JUFLUz7OSy9339Bl1xyEu8MOrv9u7iZFsYHKQlIs1H0fzZAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUPQUdUVWJvxpdyMPF896qTY2uOqgwHwYDVR0j BBgwFoAUVmDbOBHBZGrB+Luplql1e0D7BVYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDFkNTk2Yy0wOWUzLTQ2MjEtYTYzYi0yMGE1MTNjZDQ4YjkvMC81NjYwREIzODEx QzE2NDZBQzFGOEJCQTk5NkE5NzU3QjQwRkIwNTU2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTY2MERCMzgxMUMxNjQ2QUMxRjhCQkE5OTZBOTc1N0I0MEZC MDU1Ni5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkMWQ1OTZjLTA5ZTMtNDYyMS1h NjNiLTIwYTUxM2NkNDhiOS8wLzMxMzgzMjJlMzQzODJlMzEzODM1MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzQzNjMwMzMzMC5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALYwuTANBgkqhkiG 9w0BAQsFAAOCAQEAlxqyw7HtAJfn9wm5W0s9qPQYqqS134cKry6dcP/2Mi1bY8Qw Ungjry1g4dwfra3btQD4WSVbp2GXMCAc/RmJy66oP7q4r/nwOolhAWTN0WEDdd3Y 1nL80grhybPYc5Su7Qn/ZbqaWm9OsxE5OY+PUTZ0ELurqRkW+nshmVH73qaZL+A+ P3ccgTJjESrcCJF9YOpNpJlJpEPcO0wwo9+H/hphIybTlZC2Bg7JNqvzPnImh5EM +2fbzOd72VTWK0B/BSJfDxKJRJvDQXdgLxEeZvxlsz0hzQVN8TI38n1I71sU1EQh JQYusULo2XnruFBOa69OZ5/R8LFzzMb+vY5yRg== -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:17 2024 by rpki-client on console-fra.rpki-client.org